11 lines
1.6 KiB
Plaintext
11 lines
1.6 KiB
Plaintext
alert ip 107.191.61.40 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 107.191.61.40 (source) - APT Group: BlackTech"; sid:518411836; rev:1;)
|
|
alert ip any any -> 107.191.61.40 any (msg:"Suspicious Flagpro IP detected Leaving Network: 107.191.61.40 (destination) - APT Group: BlackTech"; sid:518411837; rev:1;)
|
|
alert ip 172.104.109.217 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 172.104.109.217 (source) - APT Group: BlackTech"; sid:2259028385; rev:1;)
|
|
alert ip any any -> 172.104.109.217 any (msg:"Suspicious Flagpro IP detected Leaving Network: 172.104.109.217 (destination) - APT Group: BlackTech"; sid:2259028386; rev:1;)
|
|
alert ip 139.162.87.180 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 139.162.87.180 (source) - APT Group: BlackTech"; sid:3339182745; rev:1;)
|
|
alert ip any any -> 139.162.87.180 any (msg:"Suspicious Flagpro IP detected Leaving Network: 139.162.87.180 (destination) - APT Group: BlackTech"; sid:3339182746; rev:1;)
|
|
alert ip 45.76.184.227 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 45.76.184.227 (source) - APT Group: BlackTech"; sid:3650785005; rev:1;)
|
|
alert ip any any -> 45.76.184.227 any (msg:"Suspicious Flagpro IP detected Leaving Network: 45.76.184.227 (destination) - APT Group: BlackTech"; sid:3650785006; rev:1;)
|
|
alert ip 45.32.23.140 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 45.32.23.140 (source) - APT Group: BlackTech"; sid:9643976871; rev:1;)
|
|
alert ip any any -> 45.32.23.140 any (msg:"Suspicious Flagpro IP detected Leaving Network: 45.32.23.140 (destination) - APT Group: BlackTech"; sid:9643976872; rev:1;)
|